/*
 * Copyright (C) 2021 Huawei Device Co., Ltd.
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package io.sentry.spring;

import io.sentry.SentryOptions;
import io.sentry.protocol.User;
import io.sentry.util.Objects;

import org.jetbrains.annotations.NotNull;
import org.jetbrains.annotations.Nullable;
import org.springframework.security.core.Authentication;
import org.springframework.security.core.context.SecurityContext;
import org.springframework.security.core.context.SecurityContextHolder;

/**
 * Resolves user information from Spring Security {@link Authentication} obtained via {@link
 * SecurityContextHolder}.
 */
public final class SpringSecuritySentryUserProvider implements SentryUserProvider {
    private final @NotNull SentryOptions options;

    public SpringSecuritySentryUserProvider(final @NotNull SentryOptions options) {
        this.options = Objects.requireNonNull(options, "options is required");
    }

    @Override
    public @Nullable User provideUser() {
        if (options.isSendDefaultPii()) {
            final SecurityContext context = SecurityContextHolder.getContext();
            if (context != null && context.getAuthentication() != null) {
                final User user = new User();
                user.setUsername(context.getAuthentication().getName());
                return user;
            }
        }
        return null;
    }
}
